Connect to Azure Active Directory Data through External Services in Salesforce

CData Connect Cloud, enables you to access Azure Active Directory data from cloud-based applications like the Salesforce and mobile applications like the Salesforce Mobile App. In this article, you will use CData Connect Cloud to access Azure Active Directory data through Salesforce External Services.

Connect to Azure Active Directory from Salesforce

Overview

Here is an overview of the steps:

1. Configure: (Optional) Set up your Azure Active Directory data source in CData Connect Cloud, add a Workspace, add assets to your Workspace, and generate a Personal Access Token (PAT).
2. Connect: Link Salesforce to CData Connect Cloud using OpenAPI.
3. Explore: Use your connected data in Salesforce.

Prerequisites

Ensure you have the following before starting:

1. An active Azure Active Directory account and credentials.
2. A CData Connect Cloud account. Log in or sign up for a free trial here.
3. A Salesforce account.

Connect to Azure Active Directory from Connect Cloud

CData Connect Cloud uses a straightforward, point-and-click interface to connect to data sources.

1. Log into Connect Cloud, click Sources, and then click Add Connection

2. Select "Azure Active Directory" from the Add Connection panel

3. Enter the necessary authentication properties to connect to Azure Active Directory.

   Azure Active Directory uses the OAuth authentication standard. To authenticate using OAuth, create an app to obtain the OAuthClientId, OAuthClientSecret, and CallbackURL connection properties. See the OAuth section in the Help documentation for an authentication guide.

   
4. Click Create & Test
5. Navigate to the Permissions tab in the Add Azure Active Directory Connection page and update the User-based permissions.

Add a Personal Access Token

When connecting to Connect Cloud through the REST API, the OData API, or the Virtual SQL Server, a Personal Access Token (PAT) is used to authenticate the connection to Connect Cloud. It is best practice to create a separate PAT for each service to maintain granularity of access.

1. Click on the Gear icon () at the top right of the Connect Cloud app to open the settings page.
2. On the Settings page, go to the Access Tokens section and click Create PAT.
3. Give the PAT a name and click Create.
4. The personal access token is only visible at creation, so be sure to copy it and store it securely for future use.

Configure Azure Active Directory Endpoints for Salesforce

After connecting to Azure Active Directory, create a workspace for your desired table(s).

1. Navigate to the Workspaces page and click Add to create a new Workspace (or select an existing workspace).
2. Click Add to add new assets to the Workspace.
3. Select the Azure Active Directory connection (e.g. AzureAD1) and click Next.
4. Select the table(s) you wish to work with and click Confirm.
5. Make note of the OpenAPI URL for your workspace, e.g. https://cloud.cdata.com/api/openapi/v3/{workspace_name}...

Check the column data types of the selected table:

1. Once the Azure Active Directory data table is added as an asset, select the asset, and note the column names and data types from the Columns tab.
2. In the Preview tab, preview the current data in the table to be referenced later.
3. Click on Users from the left panel and search for your username, e.g. [email protected]. Click on the same.
4. On the Edit Users screen, grant the respective user all Permissions (Select, Insert, Update, Delete, and Execute) for the entity (workspace).

With the connection, PAT, and Workspace configured, you are ready to connect to Azure Active Directory data from Salesforce.

Connect to Azure Active Directory Data as an External Service

Create a Named Credential

Follow the steps below to connect to the OpenAPI produced by CData Connect Cloud with Salesforce:

1. Log into Salesforce and navigate to Setup.
2. Search for Named Credentials in the search bar and click on it.
3. Select New -> New Legacy.
4. Add the given details in the New Named Credential screen:
   • Label: enter a label of your choice
   • Name: enter a name for the named credential
   • URL: https://cloud.cdata.com
   • Identity Type: Named Principal
   • Authentication Protocol: Password Authentication
   • Username: enter your CData Connect Cloud username. This is displayed in the top-right corner of the CData Connect Cloud interface. For example, [email protected]
   • Password: enter the PAT you generated on the Settings page
   • Generate Authorization Header: enable the checkbox

Click Save to save the details.

Create an External Service

1. Now, search for External Services in the search bar and click on it.
2. In the Add an External Service page, click From API Specification under Select an API Source.
3. In the Enter an Existing Service page, enter the given details under Modify Exiting Registration Details:
   • External Service Name: enter an identifying name for your external service
   • Description: enter a description of your external service (not a mandatory field)
   • Service Schema: Relative URL
   • Select a Named Credential: OpenAPI
   • URL: copy the OpenAPI URL from Connect Cloud and remove https://www.cdata.com and keep the rest of the URL. Make sure the URL starts with a forward slash "/api...".
   

   If the connection is successful, the message "Schema validation completed successfully!" will be displayed on the screen. Click Save & Next

4. Select all the entities in the Select Operations screen. Click Next.
5. All the schema-generated actions are displayed in the Review External Services Actions screen. Click Finish.
6. The External Services page will display all the external services created.

Create a new Flow

1. Search for Flows in the search bar and click on it.
2. Click New Flow.
3. Select Start From Scratch option and click Screen Flow.
4. In the Flow Builder screen, click on the "" between Screen Flow and End.
5. Select Screen from Add Element.
6. In the New Screen window, enter "Input Screen" in Label and the API Name will be auto-filled accordingly.
7. Next, based on the table you want to update, note the column data types to add the components to the flow.
8. Now, for the orderid column, search for the "Number" component in the Components search bar and click on it. Enter Label as "Enter Order ID" and again API Name will be auto-filled accordingly. Enable the Require checkbox and apply this for steps 9 and 10.
9. For the ordername column, search for the "Text" component in the Components search bar and click on it. Enter Label as "Enter Order Name".
10. For the personid column, search for the "Number" component in the Components search bar and click on it. Enter Label as "Enter Person ID".
11. Click Done and Input Screen will be added in the Flow Builder.
12. Now, add an element Action below the input screen in the flow.
13. Under Search Actions, search and click the newly created external service, in this case, OpenAPI1.
14. Click Create Orders.
15. Enter a name in Label, the API Name gets auto filled.
16. Click on the search bar under Set Input Values for the Selected Action and select New Resource -> Variable.
17. In the New Resource window, enter the following details:
    • Resource Type: Variable
    • API Name: Body
    • Data Type: Apex-Defined
    • Apex Class: ExternalService__CDataWorkspace2e
    • Availability Outside the Flow:
      • Available for input: enable checkbox
      • Available for output: enable checkbox
      
18. Add a new element Assignment and add the Label name as "SendBody". Again, the API Name gets auto-filled.
19. Set the given values under Set Variable Values:
    • Variable: Body>orderid; Operator: Equals; Value: Input Screen>Enter Order ID
    • Variable: Body>ordername; Operator: Equals; Value: Input Screen>Enter Order Name
    • Variable: Body>personid; Operator: Equals; Value: Input Screen>Enter Person ID
    
20. Add another Screen element below the Action element.
21. Name the Label as "Display".
22. Under Components, search for the "Display Text" component and click on it.
23. Set the API Name as "Display_Result" and in the Inside a resource search bar, select Create a new order -> response code. Click Done.
24. The flow is now ready. Click Save to save the flow and add a name to the Label as the flow name, in this case, "CreateOrdersPage". Click Save.
25. The flow is displayed on the Flow Builder screen. Click on Activate to activate the flow.

Check the flow and verify the updated details in Connect Cloud

1. Click Debug. The Debug flow window opens. Click Run.
2. In the details input page, in this case, "CreateOrdersPage", enter the details (Orders ID, Orders Name, and Person ID) and click Next.
3. The next page displays the message "200" (HTTP 200 - OK) and the right pane displays the debug details. Click Next.
4. You can change the inputs or run the process again to enter new details.
5. Check in Connect Cloud if the new details are updated in the "Orders" table, as this article outlines. This completes the process.

Simplified access to Azure Active Directory data from cloud applications

At this point, you have a direct, cloud-to-cloud connection to live Azure Active Directory data from Salesforce. For more details on accessing live data from over 100 SaaS, Big Data, and NoSQL sources through cloud applications, visit our CData Connect Cloud page.

Reach out to our Support Team if you have any questions.